This week in the AppSec News segment, Mike and John talk: HTTP bug bothers IIS, Android platform security, supply chain security (new and old), brief (very brief) history of browser security, & more! Visit for all the latest episodes!

Full Episode Show Notes

IIS Bug, Browsers & Androids & Supply Chains Oh My!


John Kinsella

John Kinsella - Chief Architect at Accurics


John Kinsella is the Chief Architect for Accurics

Mike Shema

Mike Shema - Product Security Lead at Square


Mike Shema is the Product Security Lead of Square


  • Do you want to stay in the loop on all things Security Weekly? Visit to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, join our Discord Server, and follow us on our newest live-streaming platform, Twitch!

  • In our May 27th webcast at 11am ET, we’ll explore the latest attacks against DNS and the latest techniques that make it possible to discover and disrupt attacks. In our June 3 webcast at 11am ET, you will learn about pen testing tools and why every organization should be using them regularly. Then join us June 10 at 11am ET for our webcast on insider risk to learn how to quickly mitigate data exposure risks. Visit to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at